This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 3002 Views
  • 0 replies
  • 0 Likes

Resolved! How to...(VPN globalprotect)

Hello guys,

 

I'm trying to do something and i'm not really sure if it's possible. Let's get into...

 

I have an url that is for example: "www.myweb.com". Our partner is hosting that web and with his firewall is just allowing us the access through our IP

...

IPsec VPN with AH generates core files

Hi team, 

 

I have two VM-50 v9.01, one in SiteA and another in SiteB. I set up an IPsec tunnel between them with: IKE-v1 : phase1 (aggressive mode)  and phase2 (quick mode) with ESP.  it works fine and I'am able to ping from a vlan in SiteA to another

...

Resolved! cfg export + master key hash

Dear Community,

 

I have found this side note in an article regarding the master key on the firewall.

 

"Without the Master Key, when a configuration is exported from a firewall, the password is hashed and can be copied."

 

Basically its the exact answer o

...

Rboehme by L2 Linker
  • 3946 Views
  • 1 replies
  • 0 Likes

Unable to access the GUI of WF 500

Hi Team

 

In WF 500, we are unable to access via GUI but we have access via CLI (Putty).

 

WF 500 os version is 8.0.6. Please refer the attached error snapshot. 

 

Kindly help us to resolve the issue.

 

Thanks & Regards
Mohammed Ashik

PAN Wildifre 1 GUI Error.jpg

Resolved! Intel MDS Attack

Can anyone help to provide more information if below CVE are impacted in Palo Alto product line?

Intel Microarchitectural Data Sampling Vulnerabilities (Fallout, RIDL, Zombieload) (CVE-2018-12126 , CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)

Collect syslog information

Hi, 

 

We are going to add a new syslog server in PA config. So we would like to do a bit audit about PA supporting syslog sessions.

What si the best way to know:

-Volume of traffic per day for syslog

-Top10 destination syslogs

-.....

 

thanks.

 

BigPalo by L4 Transporter
  • 3508 Views
  • 3 replies
  • 0 Likes

Overlap-Zone difference Vsys

HI Expert ,

 

I would like to know that it can be possible about overlap zone name but difference Vsys such as I would to defind name Zone "Trust" on vsys1 and would to zone name "Trust" on vsys2 as well

 

Please  suggest to me 

 

Thank you 

Resolved! Alert When Accessing Application

Good morning!

 

I'm trying to figure out if it's possible to throw an "alert" log entry when a specific application is accessed. I know it can be done with categories, but I'd like to do the same with specific applications.

 

I can always filter my Traff

...

GCSS-RT by L2 Linker
  • 3940 Views
  • 4 replies
  • 0 Likes

Do you need Windows Server 2019 support for User-ID?

If you think you will need Windows Server 2019 support for User-ID, ask your PA rep to vote for feature request ID# 11012!

 

We just upgraded all of our domain controllers organization-wide to Server 2019 only to find out that User-ID does not work wit

...

GabeC by L1 Bithead
  • 10488 Views
  • 10 replies
  • 1 Likes

Import LDAP Groups

All,

 

I am trying to import my LDAP groups, but don't want all of them.  I have too many groups to put them in the Include list.  I also have a large number of local.admin and Folder Access security groups.  SInce I can't filter by OU, how can I filte

...

Zone protection - Show hops between source & dst.

Hello,

 

I want to see the hops between the source and destination when I do tracert from my PC to an IP.

The tracert is shown as completed.

 

 

 

I followed the following kb but didn't work: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA

...

2019-05-16 16_31_47-C__Windows_system32_cmd.exe.png
upatino by L1 Bithead
  • 2929 Views
  • 1 replies
  • 0 Likes
  • 24286 Posts
  • 122 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks